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REMARKS 

Upon entry of this amendment, Claims 15-47 will be pending in this 
application. In view of the foregoing amendments and the following 
5 remarks, applicant respectfully requests consideration of the new 
Claims. 
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New Claims 15-47 are not anticipated or made obvious by, and further 
differentiate the claimed invention over the prior art of record. Elements 
that contribute to the Claims' novelty include, but are not limited to, the 
following. 



Claim 15 recites the delivery of the encrypt/ decrypt engine via a web 
page, encryption independent from the identity of the client. Ross 
requires dependence on the identity of the physical client; In the current 
15 invention, the encryption key is derived from the user of the client and 
not the physical client. 

Claim 16 recites that the encryption key in the current invention is 
entered by the user and is independent of the identity of the physical 
client. Because there may be the possibility to confuse the physical 
20 client identity and the user client identity, clarification has been made 
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herein. It is quite clear from Fig. 8 that the invention has always been 
with respect to the user of the client and not the physical client itself. 

Claim 17 recites delivery of stored data responsive to completion of a 
processing step. 

Claim 18 recites storage of encrypted data followed by delivery of the 
stored data responsive to a request from either the original client or 
another client. 



Claim 19 recites lower limits on the number of times a key must be 
transmitted. The crux of the invention is embodied herein, in that a de 
10 facto authentication takes place, because while the authentication 

information is not sent, the server can determine exactly the source of 
the data if and only if it can in fact decrypt the data. No prior art can be 
found where the authentication is tied explicitly to the ability to decrypt 
an encrypted text and not to a comparison of user identification tokens 
15 (user-name and password for example). Consequently, the shared key is 
only sent to the server one time and may never be sent to the client. 

Laursen et al, (6,065, 120) have a similar strategy, but in jfact they utilize 
. . information about the user base on the client. The authentication and 
subsequently the encryption /decryption is tied to whether the user can 
20 identify themselves based on information that is transmitted. 
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Additionally, they explicitly state that the invention thatjwe have here is 
excluded intentionally by their invention (page 3, line l)j Our invention, 
renders the usemame and password strong and is thus diametrically 
opposite to what they have invented. ■ 

5 Bodnar (6,061,790) proposes a system wherein two different keys are 
required for logging in and transmitting data. Additionally, Bodnar 
requires the client (page 10, last paragraph) to make use| of client 
hardware to generate the encryption key. It would not be a trivial 
exercise to get our invention from this patent. Again. Bodner is 
10 concerned only with the transmission of ones own transmissions. We 
are of . the opinion that it would be impossible to utilize Bodnar to send 
and receive email without the use of public/ private key pairs that would 
need to be distribute. Also, it is clear from both Bodner ajnd Ross, that 
identifying information on the server is used to authenticate and thus 
15 initiate the session (Bodner page 10 line 10, for example) : 

Claim 22 recites an encrypt/ decrypt engine configured to ioperated 
independently of the identity of the client. 

Claim 23 recites decryption and re-encryption of the data lusing a key of 
the server. 
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Claim 24 recites encryption of data for delivery responsive to the 
completion of a processing step. The encryption using tiie shared key or 
another shared key. Deliveiy may be to the client or another client. 

Claim 25 is similar to Claim 24 except that operation is responsive to a 
5 request for the data. 

Claims 25 and 26 include two possibilities for the source! of a request for 
data. 

Claim 28 recites the restriction of storage, of all data entered by the user 
on the client, to storage in encrypted form. Claim 28 also recites use of a 
10 key entered by the user for encryption. 

Claim 29 recites use of a symmetric key. 

Claim 31 is a method claim reciting use of a web page to deliver the 
encrypt/decrypt engine and reciting use of a shared key entered by a 
... user. 

15 Claims 32-36 include various methods of processing the data receive at 
the server. 

Claims 37-41 recites a computer-readable medium comprising program 
instructions. The program instructions may execute methods of the 
. invention possibly using the systems of the invention. 
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Claim 42 is a method claim including encryption of data independently of 
an identity of the client using a shared key entered by a user. Here it 
must be explicitly understood that the client is the device that 
communicates with a server, whereas, the user is the actual entity 
causing the client to perform work. Claim 42 adds considerable new 
novelty because the user is not tied to a specific client and, the 
authentication and data delivery is tied to the user and nbt the physical 



client. 
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Claim 43-47 include further details of the step of processing data 
decrypted at the server. 
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Conclusion 



In specifying the invention, the Applicant has reviewed the prior art of 
Krajewski (5,590,199), Linehan (5,495,533), Diffic et al (5,371,794), 
Wobber et al (5,235,642), Lennon et al (4,193,131), Barnes et al 
(5,970,475), Smithies et,al (6,091,835), Ross (5,812,671) and others. 
None of these would preclude the current invention from being allowed. 

The Applicant respectfully request a Notice of Allowability. If the 
Examiner has questions regarding the case, the Examiner is invited to 
contact Applicant's undersigned representative at the number given 



below. 



Dated: September 27, 2002 
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Lynn D. SPraggs, Ph.D. 

Ultra Information Systems Inc. 

2179 11 th Ave. 

Vernon, BC Canada V1T 8V7 

Tel: (250) 542-0112 

Fax: (250) 549-3751 

e-mail: Ispraggs@uisamerica.com 
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Appendix showing c hanges to the Sp ecification, 
On page 6 starting at line 14: 

Referring now to FIG. 1, a schematic diagram illustrates a 
5 server 100 used to receive encrypted data from a sending client 

computer 102 and transmit encrypted data to a receiving client 
computer 104 through the Internet 106 using shared private keys. 
The sending client 102 and receiving client 104 sh4re their own 
private key with the server 100, but do not share tfteir private keys 
10 with anyone else. 

On page 8 starting at line 6: 

FIG. 5 is a block diagram of one embodiment |of the non- 
volatile memory module 406 located within the clients 102, 104 of 
FIG. 4. The non-volatile memory 406 includes an ehcrypt/ decrypt 
engine 502 for encrypting and decrypting data. Thei 
encrypt/ decrypt engine 502 can also be stored in RAM 404. 
Excellent results can be obtained when the enctypt/ decrypt engine 
is served up as a Java™ applet to the clients 102, 104. The Java™ 
20 applet can : be served up with a web page from an email sent to the 

clients 102, 104 /and then stored on their hard drive. 
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47. (New) The method of claim 43, wherein the step of processing the 
decrypted data includes the steps of: 

processing the data according to an instruction of the user; 
re-enciypting the processed data using the user's shared key; and 
sending the re-encrypted processed data to the user. 
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